Rating: 5 stars
good and valid
]]>Rating: 5 stars
Reviewed the changelog before installing, glad file permissions are now left alone, confirmed, all working as expected. Great plugin, thanks! 5-Stars!
]]>Rating: 5 stars
This is a simple, elegant and yet powerful addition to any security you might already have on your site/sites.
I have been the victim of cookie hijacking. It wasn’t a pleasant experience!
This plugin ensures you and your team log out according to a fixed schedule resulting in a fresh cookie when you log back in. Indispensable!
]]>Rating: 5 stars
This plugin (Salt Shaker) is amazing, and every WP website needs it. Use this plugin to keep your website secure.<gwmw style=”display:none;”></gwmw>
]]>Rating: 5 stars
this is great plugin, each site should have it. you will not have it with other plugins, keep your site safe
]]>Rating: 5 stars
The plugin works fine
]]>Rating: 5 stars
This plugin left me with a white screen
]]>Rating: 5 stars
Great plugin.
]]>Rating: 5 stars
Very useful and well built
]]>Rating: 5 stars
This is one of the best plugins I use on my sites. It is simple to use, does exactly what it is supposed to, and best of all boosts the security of my sites.
The only thing that confuses me about it is, why don’t way more sites use it??!!?
]]>Rating: 5 stars
If WordPress salts worries you, you can rest know.
If you think that installing it is easy, “configuration” is easier.
Please keep the plugin up-to-date.
]]>Rating: 5 stars
Installed on WP 5.4.1 with PHP 7.4. No problems at all.
]]>Rating: 5 stars
Thank you for making this available for free. My site is now a bit more secure.
]]>Rating: 1 star
I’ve been using this plugin for a long time to try help harden WordPress installs against hackers.
I recently noticed that the file permissions on the wp-config.php files kept being changed to 666 and thought that my sites had been hacked.
By pure luck and chance, while looking at a site error log, I found that this file wp-content/plugins/salt-shaker/_inc/core.class.php has this code towards the bottom
//set the recommended permissions to wp-config.php read:
chmod($config_file, 0666);
This changes the permissions on your wp-config.php file to 666 meaning that the whole world can read and write to your wp-config file!!!!! WTF!
Anyone would have total access to server paths, database details as well as password, etc.
Additionally I have noted that while it is changing the SALTS it still allows me to remain logged into the site instead of logging ALL users out as it should be.
UNINSTALLED IMMEDIATELY.
I DO NOT RECOMMEND INSTALLING THIS PLUGIN.
]]>Rating: 5 stars
Thank You!
]]>Rating: 5 stars
If I have time later, I’ll see if I can add the code to add missing salts.
]]>Rating: 5 stars
easy install and set up, worked immediately
]]>Rating: 3 stars
How much harder can it be to allow setting of the date and time that the keys will be changed? How does one know when they have been changed?
]]>Rating: 5 stars
Thank you for doing this Nagdy.
]]>Rating: 2 stars
Maybe a good idea, but it works only, if the wp-config.php is in the root of your WP installation.
If you have moved it one level higher for security reasons, this plugin takes no effect at all. Sad, the idea could be good …
Rating: 5 stars
Straightforward way to do a tedious but crucial thing. Will now happen regularly on my sites. Thanks.
]]>Rating: 5 stars
Working as expected, thanks ??
]]>Rating: 5 stars
Works exactly as expected ?? Thanks!
]]>Rating: 5 stars
At first I had doubts this could kill my wordpress site, but it worked without any problems. Just one minor issue: If you move the location of the wp-config.php to root (which is a huge security improvement), this plugin won’t be able to change the keys anymore.
]]>Rating: 5 stars
Simple to use.
]]>Rating: 5 stars
This is a fantastic plugin! A great addition to my security arsenal and does exactly what it says.
]]>Rating: 5 stars
Thank you Nagdy ?? Your Plugin works fantastic!
]]>